From e140ba71d60db51e86b683da476b0c0ad68f7fcb Mon Sep 17 00:00:00 2001
From: Aaron Jones <aaronmdjones@gmail.com>
Date: Fri, 30 Dec 2016 17:25:34 +0000
Subject: [PATCH] OpenSSL: Disable TLSv1.0

---
 libratbox/src/openssl.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/libratbox/src/openssl.c b/libratbox/src/openssl.c
index 0a5e183d..4954e483 100644
--- a/libratbox/src/openssl.c
+++ b/libratbox/src/openssl.c
@@ -431,6 +431,10 @@ rb_setup_ssl_server(const char *const certfile, const char *keyfile,
 	(void) SSL_CTX_set_options(ssl_ctx_new, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
 	#endif
 
+	#ifdef SSL_OP_NO_TLSv1
+	(void) SSL_CTX_set_options(ssl_ctx_new, SSL_OP_NO_TLSv1);
+	#endif
+
 	#ifdef SSL_OP_NO_TICKET
 	(void) SSL_CTX_set_options(ssl_ctx_new, SSL_OP_NO_TICKET);
 	#endif